AMENDMENT TO THE CLAIMS 
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1 . (Currently amended) A method for sharing a secure 
communication Session with a client between a plurality of servers, comprising: 

receiving a message from the client at a first server in the plurality of 
servers, the message including a session identifier that identifies a secure 
communication session with the client; and 

if the sessionudentifier does not correspond to an active secure 
communication session on the first server, establishing an active secure 
communication sessiomwith the client on the first server by, 

attempting to retrieve state information associated with the 
session identifier for an active secure communication session 
between the\client and a second server from the plurality of 
servers, 

if the siate information for the active secure communication 
session is retrieved, using the state information to establish the 
active secure communication session with the client without 
having to communicate with the client , whereby the secure 
communication session is transferred from the client and the 
second server to the client and the first server without incurring the 
overhead of establishing a new secure connection , and 

if the state information for the active secure communication 
session is not retrieved, aommunicating with the client to establish 
the active secure communication session with the client. 
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2. (Original) The method of claim 1, wherein attempting to retrieve 



the state information includes: 
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3 attempting to use the session identifier to identify the second server in the 

4 plurality of servers that has an active secure communication session with the 

5 client that corresponds to the session identifier; and 

6 attempting to retrieve the state information from the second server. 

1 3 . (Oftiginal) The method of claim 1 , wherein attempting to retrieve 

2 the state information involves attempting to retrieve the state information from a 

3 centralized repositorXthat is in communication with the plurality of servers. 

1 4. (Original)YThe method of claim 3, wherein the centralized 

2 repository includes a database for storing the state information. 

1 5. (Original) The method of claim 1, wherein establishing the active 

2 secure communication session involves establishing a secure sockets layer (SSL) 

3 connection with the client. \ 

1 6. (Original) The method of claim 1, wherein the state information 

2 includes; \ 

3 a session encryption key for the secure communication session; 

4 the session identifier for the secure communication session; and 

5 a running message digest for the sedaire communication session. 

1 7. (Original) The method of claiiA 6, further comprising: 

2 using the message to update the runningunessage digest; and 

3 checkpointing the updated running message digest to a location outside of 

4 the first server. \ 
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8. (Original) The method of claim 1 , further comprising, if the state 
information for the active secure communication session is retrieved, purging the 
state information from a location from which the state information was retrieved, 
so that the state information cannot be subsequently retrieved by another server in 
the pluraliw of servers. 

9. VOriginal) The method of claim 1, further comprising initially 
establishing an afctive secure communication session between the client and the 
second server, the^ctive secure communication session being identified by the 
session identifier. 

10. (Original The method of claim 1 , wherein attempting to retrieve 
the state information includes authenticating and authorizing the first server. 

11. (Cancelled) 

12. (Cancelled) 

13. (Currently amended) A computer-readable storage medium storing 
instructions that when executed by a computer cause the computer to perform a 
method for sharing a secure communication session with a client between a 
plurality of servers, the method comprising 

receiving a message from the client a\ a first server in the plurality of 
servers, the message including a session identifier that identifies a secure 
communication session with the client; and 

if the session identifier does not correspond to an active secure 
communication session on the first server, establishing an active secure 
communication session with the client on fiie first seWr by, 
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attempting to retrieve state information associated with the 
session identifier for an active secure communication session 
between the client and a second server from the plurality of 
servers, 

if the state information for the active secure communication 
session is retrieved, using the state information to establish the 
active secure communication session with the client without 
having\o communicate with the client , whereby the secure 
communication session is transferred from the client and the 
second server to the client and the first server without incurring the 
overhead of establishing a new secure connection , and 

if the state information for the active secure communication 
session is not retrieved, communicating with the client to establish 
the active secure communication session with the client. 



1 14. (Original) The computer-readable storage medium of claim 13, 

2 wherein attempting to retrieve the stateyinformation includes: 

3 attempting to use the session identifier to identify the second server in the 

4 plurality of servers that has an active secure communication session with the 

5 client that corresponds to the session identifier; and 

6 attempting to retrieve the state information from the second server. 

1 15. (Original) The computer-readable Storage medium of claim 13, 

2 wherein attempting to retrieve the state informationVivolves attempting to 

3 retrieve the state information from a centralized repository that is in 

4 communication with the plurality of servers. 
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6. (Original) The computer-readable storage medium of claim 1 5, 
wherein the centralized repository includes a database for storing the state 
information. 

17. \ (Original) The computer-readable storage medium of claim 13, 
wherein establishing the active secure communication session involves 
establishing a secure sockets layer (SSL) connection with the client. 

1 8. (Orminal) The computer-readable storage medium of claim 13, 
wherein the state information includes: 

a session encryption key for the secure communication session; 
the session identifier for the secure communication session; and 
a running message\digest for the secure communication session. 

19. (Original) TheVomputer-readable storage medium of claim 1 8, 
wherein the method further corWises: 

using the message to update the running message digest; and 
checkpointing the updated running message digest to a location outside of 
the first server. \ 

20. (Original) The computer-readable storage medium of claim 13, 
wherein the method further comprises, if trae state information for the active 
secure communication session is retrieved, purging the state information from a 
location from which the state information wakretrieved, so that the state 
information cannot be subsequently retrieved bV another server in the plurality of 
servers. \ 




21A (Original) The computer-readable storage medium of claim 13, 

2 wherein the method further comprises initially establishing an active secure 

3 communication session between the client and the second server, the active secure 

4 communication session being identified by the session identifier. 



1 22. (Original) The computer-readable storage medium of claim 13, 

2 wherein attemptinato retrieve the state information includes authenticating and 

3 authorizing the first server. 

1 23. (Cancelled) 

1 24. (Cancelled^ 

1 25. (Currently am&ided) An apparatus that shares a secure 

2 communication session with a client between a plurality of servers, comprising: 

3 a receiving mechanism, aha first server in the plurality of servers, that 

4 receives a message from the client,Vhe message including a session identifier that 

5 identifies a secure communication sefesion with the client; 

6 an examination mechanism that examines the session identifier; and 

7 a session initialization mechanism, on the first server, wherein if the 

8 session identifier does not correspond to m active secure communication session 

9 on the first server, the session initializationVnechanism is configured to establish 

1 0 an active secure communication session witlV the client by, 

1 1 attempting to retrieve sriate information associated with the 

12 session identifier for an active seVure communication session 

13 between the client and a second server from the plurality of 

14 servers, 
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15/ \ if the state information for the active secure communication 

1 6 \ session is retrieved, using the state information to establish the 

1 7 \ active secure communication session with the client without 

1 8 \ having to communicate with the client , whereby the secure 

19 \c Qmmim{cation session j s transferred from the client and the 

20 second server to the client and the first server without incurring the 

21 overhead of establ ishing a new secure connection , and 

22 \ if the state information for the active secure communication 

23 sessiori is not retrieved, communicating with the client to establish 

24 the active secure communication session with the client. 

1 26. (Original) The apparatus of claim 25, wherein the session 

2 initialization mechanism is configured to attempt to retrieve the state information 

3 by: 

4 attempting to use the session identifier to identify the second server in the 

5 plurality of servers that has an active secure communication session with the 

6 client that corresponds to the sessio\ identifier; and 

7 attempting to retrieve the stateVnformation from the second server. 



1 27. (Original) The apparatus df claim 25, wherein the session 

2 initialization mechanism is configured to attempt to retrieve the state information 

3 by attempting to retrieve the state information from a centralized repository that is 

4 in communication with the plurality of servers 

1 28. (Original) The apparatus of claim ^27, wherein the centralized 

2 repository includes a database for storing the state information. 
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1 1 29 . \ (Original) The apparatus of claim 25, wherein the active secure 

2 communication session includes a secure sockets layer (SSL) connection with the 

3 client. 

1 30. (C%inal) The apparatus of claim 25, wherein the state information 

2 includes: 

3 a session encfyption key for the secure communication session; 

4 the session identifier for the secure communication session; and 

5 a running message digest for the secure communication session. 

1 31. (Original) Th^apparatus of claim 30, further comprising an 

2 updating mechanism that is configured to: 

3 use the message to upda& the running message digest; and to 

4 checkpoint the updated running message digest to a location outside of the 

5 first server. 

1 32. (Original) The apparatu^of claim 25, further comprising a purging 

2 mechanism that is configured to purge thit state information from a location from 

3 which the state information was retrieved, \o that the state information cannot be 

4 subsequently retrieved by another server in t^e plurality of servers. 

1 33. (Original) The apparatus of claiA 25, wherein the session 

2 initialization mechanism is configured to authenticate and authorize the first 

3 server prior to receiving the state information. 

1 34. (Cancelled) 



35. (Cancelled) 
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